SQL Injection Vulnerability in S-CMS PHP 1.0 via type parameter in member_news.php

SQL Injection Vulnerability in S-CMS PHP 1.0 via type parameter in member_news.php

CVE-2018-18887 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

S-CMS PHP 1.0 has SQL injection in member/member_news.php via the type parameter (aka the $N_type field).

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.